Browse Source

docker: remove broken config serialize; add sshd state

master
Sean Johnson 3 years ago
parent
commit
b06f6c591a
WARNING! Although there is a key with this ID in the database it does not verify this commit! This commit is SUSPICIOUS. GPG Key ID: 9FA15B87469EA850
  1. 8
      app/docker/config.sls
  2. 13
      app/sshd.sls
  3. 1
      top.sls

8
app/docker/config.sls

@ -1,13 +1,5 @@
---
write docker config to /etc/docker/daemon.json:
file.managed:
- name: /etc/docker/daemon.json
- mode: 0660
- contents: {{ salt['pillar.get']('docker:config', {}) | tojson | yaml_squote }}
- watch_in:
- service: docker
allow unprivileged userns clone:
sysctl.present:
- name: kernel.unprivileged_userns_clone

13
app/sshd.sls

@ -0,0 +1,13 @@
---
add ssh group:
group.present:
- name: ssh
backup sshd config:
file.managed:
- name: /etc/ssh/sshd_config
- backup: minion
include:
- openssh.config

1
top.sls

@ -7,6 +7,7 @@ base:
- base.python
- base.repositories
- saltbox.minion
- app.sshd
- users
'roles:cfdd':

Loading…
Cancel
Save